[FR] add node taint toleration to Pods that are targeted by a public ingress

cruise-automation / k-rail

Kubernetes security tool for policy enforcement

Apache License 2.0

443 stars 54 forks source link

[FR] add node taint toleration to Pods that are targeted by a public ingress #37

Open dustin-decker opened 4 years ago

dustin-decker commented 4 years ago

This enables automatic scheduling of public workloads on nodes isolated from the rest.

This requires using the k8s API to resolve Pods or some other resource from the Service that the Ingress targets.

bvandewalle commented 4 years ago

A similar feature should also exist for services type LoadBalancers

mark-adams commented 1 year ago

👋 The k-rail project has been deprecated and is no longer under active development. We recommend taking a look at OPA Gatekeeper to see if it might meet your needs going forward.

Thanks for your contribution(s) to the project!